Cybersecurity Engineer vs Cybersecurity Analyst 

Check out free courses @ convocourses.com

It all depends on how the company defines the roles. I’m a Cyber Security Engineer and I do programming of Security solutions and implementations as well.

Thank you for this video. I am completing an associate degree in cybersecurity and plan to start a cybersecurity engineering program next spring. I appreciate your candid presentation.

cybersecurity is confusing, i had an interview thinking I'd be doing one thing, and then realise it wasn't quite what I had in mind. The job description was a bit vague.

That's not exactly correct. Security engineer is someone who implements the security solutions, platforms etc. We do go through documentation over and over, but we do a lot of administration/implementation work. Example of a task? A security architect has chosen a SIEM solution and it's up to engineers to set up servers and then set up this SIEM and integrate it with all endpoints (so from where SIEM will collect the data). And security analysts? They will have access to some ticketing tool, to dashboards and then they will analyze whatever alerts where triggered.

Bruce your teaching videos are amazing thanks for the wonderful works

This was a really helpful video!!! I liked the candid conversational style too.

Which one is easier? Looking for something remote and leisure

Thanks for the information.

Loved the video. Would you recommend getting certified or associate degree? Or both?

Hi there! I'm graduating with a Master's in Behavior Analysis (psychology field) and looking into IT. I also have 2 years of experience as a project coordinator/some Business Analysis experience working with IT as well. Can you give some tips on which IT Jobs may be a good fit? There's so many routes to go in IT and am overwhelmed!

IT BSc degree, and some technical writing experience, which option would be better done remotely from anywhere in the World, like a digital nomad type of thing… Analytics or CS Engineering. I don’t want an easy way, just what is practical and good as a long term career that I could be proud off…? Thx 🍀

Here's the thing as I'm going to be discussing this on my Twitch Feed fairly soon. That being said, let me be brief in addition to my comment below under Fahad's comment. #1 - The role is contingent on the company (sure). #2 - The company has no idea WTF they want (being brutally honest). As a "California Techie," to be an engineer requires you actually engineering (i.e., building repos, architecting security controls, and administering firewalls, servers, and security tools). Whereas, "an Analyst" are nothing more than "button pushers" using security tools to automate tasks and reports. Por instance, I have friends who work in SCIF's. NONE OF THEM are titled as being "analysts." In fact, we detest analysts and their roles because they get paid the same as "traditional engineers" even though they don't: engineer, code, architect, configure, and administer day-in and day-out. Like I've met so many "analysts" with CASP Certs, Sec+ Certs, and CISSP Certs who: can't even RDP into a server, don't know how to clear a command line to start fresh, don't know what registry keys are, don't know how to powershell or C++, and don't even know simple stuff like enabling .net frameworks. So perhaps this is the reason why! Both companies and agencies struggle with "increasing their security posturing;" to either meet and/or exceed compliance. 😄😄 It's like my IT Director and former ISSO told me years ago "I don't higher certs. Every cert personnel I hired couldn't hack it when they were thrown in the fire. They're good test takers sure, but they're not good engineers who can scope, configure, and explain things from A to Z. Which is why I hire experience over certifications." 💯💯

THis was a great video.